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MENTS TO THE CLAIMS 



1 . (Currently Amended) A method of registering a non-configured network device in a 

telecommunications network, the method comprising the computer-implemented steps o£ 
providing, using a secure communication channel, information identi^g a trusted 

device xegistration service to a first non-configured network packet-routing device 
for use in obtaining a longer-lived symmetric kej^ 
providing trusted information to the trusted device registration service that certifies that 

the first device is a known device within a security realm; 
authenticating the first device to the trusted device registration service; 
registering the first device in the netwoik at the trusted device registration service, 
wherein the trusted device registration service establishes a longer-lived 
symmetric key and provides the first device with the longer-lived symmetric key^ 
and wherein the longer^Uved svmmctric key is valid until a subsequent registering 
of the first device at the trusted registration service: 
receiving a message fi:om the first device that requests network services, wherein the 

message from the first device contains the longer-lived symmetric key, 
authenticating the first device based on the longer-lived symmetric key; 
generating and providing a shorter-lived symmetric key Uj the first device based on 
authenticating the longer-lived symmetric ke y, wherein the shorter^li ved 
symmetric kev is valid no longer th an a period during which the longer-lived 
symmetric key is vali4 : 
receiving a request fix>m a second network packet routing device to obtain a session key 
for secure communications between the second device and the first device, 
wherein the second device sends the request in response to receiving a request 
firom the first device to obtain a session key on behalf of both the first device and 
the second device; 

auflienticating the request firom flie second device based on authenticating the shorter- 
Kved symmetric key of the first device, wherein the request fixan the second 
device includes the shorter-lived symmetric key of the first device; and 
generating and providing a synranetric session key to the second device for use in 

subsequent secure peer-to-peer communications between the first device and the 
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second device, wherein the first device obtains the symmetric session key from 
the second device without communication of the first device to a key management 
service or authoritative authentication service. 

2. (Original) A method as recited in Claim I , wherein the shorter-lived symmetric key is 
enc^sulated in a ticket that includes data identifying a specified lifetime of the shorter^ 
lived symmetric key. 



3. (Canceled). 



4. (Original) A method as recited in Claim 1, wherein the subsequent secure 
communications comprise successive symmetric encryption and decryption operations 
using the symmetric session key, and wherem the frst device and second device carry out 
the subsequent secure communications without contact wift a key management s^ce or 
registration service. 

5. (Canceled). 



6. (Canceled). 



In (Canceled). 



8. (Ctomfly Amended) A mettiod of distributing cryptogr^hic keys in a network, the 
med}od comprising the computer-implem^ted steps of: 

providing, using a secure cotnmunication channel, a registration service identifier that 

identifies an administrative entity to a first non-configured network packet routing 
device; 

providing a unique identifier of the first device to the administrative entity; 
associating a device public key with the first device in a secure data r^ository that is 
accessible by the administrative entity; 
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autfaenticating the first device to the administFative entity based on the device public key 
associated with the first device; 

establishing a longer-lived symmetric key for the first devic e, and vyherein the longer- 
lived symmetric key is valid until a subsequent registermg of the first device at 
the trusted registration service : 

authenticating the first device based on receiving the longer-lived symmetric key &om 
the first device; 

generating and providing a short-term symmetric key to the first device based on 
authenticating the longer-lived symmetric ke v. wherein the shorter-lived 
symmetric kev is valid no longer than a period during which the longer-lived 
symmetric key is valid : 

receiving a request fix)m a second network packet routing device to obtain a session key 
for secure communications between the second device and the first device» 
wherein the second device sends the request in response to receiving a request 
fiiom the first device to obtain a session key on behalf of both the first device and 
the second device; 

authenticating the request Scorn the second device based on authenticating the shorter- 
lived symmetric key of the first device, wherein the request from the second 
device includes the shorter-lived symmetric key uf the first device; and 

generating and providing a symmetric session key to the second device for use m 

subsequent secure peer-to-peer communications between the first device and the 
second device, wherein the first device obtains the symmetric session key from 
the second device without communication of the first device to a key management 
service or authoritative axithcnticatiou service. 

(Previously Presented) A method as recited in Claim 8, wherein the step of associating a 
device pubUc key with the first device in the secure data repository comprises the steps of 
generating a public key pair comprising a device public key and a device private key and 
storing Lhe device public key in a database or directory that is accessible to the 
administrative entity. 
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10« (Picvicmsly Presented) A method as recited in Claim 8, wherein the step of associating a 
device public key with the first device in the secure data repository comprises the steps of 
generating a public key pair comprising a device public key and a device private key and 
registering the device public key with a certification authority that is accessible to the 
administrative entity. 

11. (Canceled). 

12. (Canceled). 

13. (Previously Presented) A method as recited in Claim 8> wherein providing a unique 
identifier of the firet device to the administrative entity comprises the steps of creating 
and storing an association of a unique identifier of the first device and the device public 
key in a secure database that is accessible to the administrative entity. 

14. (Original) A method as recited in Claim 9, wherein establishing a longer-lived 
symmetric key comprises tlxe steps of: 

generating the longer-lived symmetric kejr, 

encrypting the longer-lived symmetric key using the device public kejr, 
encapsulating the encrypted longer-lived symmetric key in a device registration ticket; 
and 

sending the device registration ticket to the device. 

15. (Original) A method as recited in Claim 14, wherein enc^sulating the encrypted key 
comprises encapsulating the encrypted longer-lived symmetric key with policy 
information in the device registration ticket, wherein the policy infonnation defines a 
validity interval of the encrypted longer-hved symmetric key. 
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1 6* (Original) A method as recilcd in Qiiini 8, whcrdn gcncxuling and pns viding sdiort- 
teim symmetric key to the first device includes the steps of encapsulating the short-term 
symmetric key in a short^erm ticket granting ticket with associated policy information. 

17. (Previously Presented) A method as recited in Claim wherein the step of receiving a 
request Horn a second device to obtain a session key for secure communications among 
the second device and the first device comprises the steps of: 

receiving a first short-t^m ticket granting ticket that includes the short-term symmetric 

key of the first device; 
receiving a second short-term ticket granting ticket that includes the short-t^m 

symmetric key of the second device; 
decrypting ttie first and second short-term ticket granting tickets based on respective first 

and second shared secret keys; 
authenticatmg the short-term symmetric keys of the first device and second device based 

on the respective first and second shared secret keys; and 
generating and providing a symmetric session key to the second device fbr use in 

subsequent secure peer-to-peer communications between the first device and the 

second device without communication of the first device to a key management 

service or authoritative authentication service. 

18. (CuiTfflitly Amended) A method of establishing secure cryptographic peer-to-peer 
communication between a first network packet routing device and a second network 
packet routing device in a network, the method con^rising the computer-impl^ented 
steps of: 

providing a unique identifier of flie first device to an administrative Mtity and receiving 
in response^ tiirough a secure communication channel, a registration service 
identifier that identifies an administrative entity to the first device; 

creating and storing a device public key associated with tiie first device in a secure data 
repository that is accessible by the administrative entity; 



PAGE 10/22 * RCVD AT 7{28I20(I6 3:09:10 PM [Eastern Daylight Tlm^^ 



07/28/2006 11:06 4083920542 HPTB PAGE 



HUR. Ser. No. 10/008,053, filed November 9, 2001 . GAU 2136 
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authenticatiiig the first device to the administrative entity by sending a message from the 
first device to the admmistrative entity that is encrypted using the device public 
key, 

recetving a longer-lived symmetric key for the first devic e, and wherein the longer-lived 
symmetric kev is valid until a subsequent registering of the first device at the 
trusted re^stration service: 

authenticating the first device to a key management server iiding the longer-lived 
symmetric key of the first device; 

receiving a short-term symmeMc key Soom the key management server, based on 
authenticating the longer-lived symmetric ke v> wherein the shorter-lived 
symmetric key is yalid_nolanger than a period during which the longer-hved 
svmmetric kev is valid: 

generating a request to a second device to obtain a session key for secure 

communications among the second device and the fii^l device, based on 
authenticating the short-tenn symmetric key, wherein the request includes the 
short-temi symmetric key of the first device; and 

receiving a symmetric session key from the second device for use in subsequent secure 
peer-to-peer communications between the first device and the second device 
without communication of the first device to a key management service or 
authoritative authentication service?. 

19» (Previously Pressented) A method as recited in Claim 18, wherein the steps of creating 

and storing a device public key associated with the first device in a secure data repository 
comprises the steps of generating a public key pair comprising a device public key and a 
device private key and storing the device public key in a database or directozy that is 
accessible to the administrative entity. 

20. (Previously Presented) A method as recited in Claim 1 8, v^erein the st^s of creating 

and storing a device public key associated with the first device in a secure data repository 
comprises the steps of generating a public key pair comprising a device public key and a 
device private key and registering the device public key with a certification autiiority that 
is accessible to the administrative entity* 
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21. (CanceledO 

22. (CanceledO 

23. (Previously Presented) A method as recited in Claim 1 8, wherein providing iuformation 
to a registration service that the first device is a certified device comprises the steps of 
creating and storing an association of a unique identifier of the first device and the device 
public key in a secure database that is accessible to the registration service, and providing 
the unique id^itifier fit^m the first device to the registraticm service. 

24. (Original) A method as recited in Claim 19, wherein receiving a longer-lived symmetric 
key comprises the steps of receiving a device registration ticket that comprtGes the 
longer^lived symmetric key encrypted using the device public key. 

25. (Original) A method as recited in Claim 24* wherein the encrypted longer-lived 
symmetric key is encapsulated in the device registration ticket with policy infomiation 
that defines a validity interval of the encrypted longer-lived symmetric key* 

26. (Original) A method as recited in Claim 18, wherein receiving the short-term symmetric 
key comprises the steps of receiving the short-term symmetric key in a short-tmn ticket 
granting ticket with associated policy information. 

27. (Original) A method as recited in Claim 1 8, wherein the Rtep of generating a request 
from a second device to obtain a session key for secure commtmicotions among the 
second device and the fii'st device comprises the steps of generating a first short-temi 
ticket granting ticket that includes the short-term symmetric key of the first device. 

28. (Original) A method as recited in Claim 1 8, v^erdn the step of receiving a sj^mctric 
session key from the second device for use in subsequent secure pe^-to-peer 
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CQmmimicatiozis between the first device and the second device comprises receiving a 
shared service ticket that contains the symmetric session key. 

29. (Original) A method as recited in Claim 28, further coniprising the steps of: 
generating an initial request for peer-to-peer secure communication, wherein the initial 

request is directed to the second device and includes the shared service ticket; 
aulhcnticating the second device baaed on the symmetric session key in the shared 
service ticket; 

communicating one or more messages to the second device using the symmetric session 
key to enaypt or decrypt the messages. 

30. (Currently Ammded) A computer-readable storage m edium carrying one or more 
sequences of instructions for distributing cryptogr^hic keys in a netWQrk» which 
instructions* when executed by one or more processors^ cause the one or more processors 
to carry out the steps of: 

providing, using a secure communication channel, a registration service identifier that 

identifles an administrative entity to a first non-configured network packet routing 
device; 

providing a unique identifier of the first device to the administrative mtity; 

associating a device public key with the first device in a secure data repository that is 
accessible by the administrative entity; 

authenticating the firsl device to the administrative entity based on the device public key 
associated with the first device; 

establishing a longer-lived symmetric key for the first devic e, and wherein the longer- 
lived symmetric kev is valid until a subsequent registerinp of the first device at 
the trusted registration service: 

authenticating the fiiasL device based on receiving the longer-lived symmetric key fi^m 
the first device; 

gaerating and providing a short-temi symmetric key to the first device based on 
authenticating the longer-lived symmetric ke v, wherein the shoyter-lived 
symmetric key is valid no longer than a period during whic h the longer^Kved 
symmetric kev is valid: 
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receiving a request from a second network packet routing device to obtain a session key 
for secure communications between the second device and the first device, 
wherein the second device sends the request in response to receiving a request 
fium (he first device to obtain a session key on behalf of both the first device and 
the second device; 

authenticating the request torn the second device based on authenticating the shorter- 
lived symmetric key of the first device, wherein the request from the second 
device includes the shorter-lived symmetric key of the first device; and 

generating and providing a synunetric session key to the second device for use in 

subsequent secure peer-to-peer communications between the first device and the 
second device without communication of the first device to a key management 
service or authoritative authentication service. 



3 1 . (Cunrently Amended) An apparatus for distributing cryptographic keys in a network, 
comprising: 

means for providing, using a secure oommunication channel, a registration service 

identifier that identifies an administrative entity to a first non-configured network 

packet routing device; 
means for providing a unique identifier of the first device to the administrative entity; 
means for associating a device public key with the first device in a secure data repository 

that is accessible by the adTninistrdtive entity; 
means for authenticating the first device to the adminiatrative entity based on the device 

public key associated with the first device; 
means for establishing a longer-lived symmetric key for the first devic e, and wherem the 

longer-lived svmmetric key is valid un til a subsemient registering of the first 

device at the trusted registration service! 
means for authenticating the first device based on receiving the longer-hved symmetric 

key ftora the first device; 
means for generating and providing a short-term symmetric key to the first device based 

on authenticating the longer-lived symmetric kc v, wherein the shorter-lived 
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symmetric kev is vaUd no longer than a period during which the longeJ-lived 
symmetric kev is valid: 

means for receiving a request fixnn a second network packet routing device to ohtain a 
session key for secure communications between the second device and the first 
device, wherein the second device sends the request in response to receiving a 
request ftom the first device to obtain a session key on behalf of both the first 
device and the second device; 

means for authenticating the request from the second device based on authenticating the 
shorter-lived symmetric key of the first device, wherein the request fi:om the 
second device includes the shorter-lived symmetric key of the first device; and 

means for generating and providing a symmetric session key to the second device for use 
in subsequent soiure peer-to-peer communicatioiis between the first device and 
the second device, wherein the first device obtains the symmetric session key 
fixmi the second device without communication of the first device to a key 
management service or authoritative authentication service. 

(Currently Amended) An apparatus for distributing oryptographic keys in a data, 
network, comprising: 

a network interface that is coupled to the data network for receiving one or more packet 
flows therefix>m; 
a processor; 

one or more stored sequences of instructions which, when executed by the processes, 
cause the processor to carry out the steps of: 

providing, using a secure communication channel, a registration service identifier that 

identifies an administrative entity to a first non-configured netwcik packet routing 

device; 

providing a unique identifier of the first device to the administrative entity; 
associating a device public key with the first device in a secure data repository that is 

accessible by the administrative entity; 
authenticating the first device to the administrative entity based on the device public key 

associated with the first device; 



50325^590 (SeqNo 4700) 11 

PAGE 1«22'RCVDAT7/2812006 3:09:10PM [Eastern Day^^^^ 



P7/28/2Q06 11:66' 40^3920542 



HPTB 



PAGE 



HUR, Ser. No. 10/008,053, filed November 9, 2001 . 6AU 2136 

REPLY TO OFFICE ACTION 

establishing a longer-lived symmetric key for the first devic e, and wherein the long er- 
Kyed ?y^^c key valid until ft smb^gflUffiit ^ffiStSiBff B ftf ftff fi^S^ 4ffYice flt 
the trusted registration service: 

authenticating the first device based on receiving the longer-lived symmetric key from 
the first device; 

generating and providing a short-term symmetric key to the first device based on 
authenticating the longer-lived symiTietric ke y, wherei-n the shotter-lived 
symmetric kev is valid no longer than a period during which the longer-lived 
synmeiric kev is valid: 

receiving a request fiiom a second network packet routing device to obtain a session key 
for secure communications betw^een the second device and the first device, 
wherein the second device sends the request in response to receiving a request 
firom the first device to obtain a session key on behalf of both the first device and 
the second device; 

authenticating the request fit>m the second device based on authenticating the shorter- 
lived symmetric key of the first device, wherein the request fi'om the second 
device includes the shorter-lived symmetric key of the first device; and 

generating and providing a symmetric session key to the second device for use in 

subsequent secure peer-to-pcer communications betwem the first device and the 
second device, wherein the first device obtains the symmetric session key ftom 
the second device without communication of the first device to a key management 
service or authoritative authentication service. 



33. (Previously Presented) An apparatus as recited in Claim 31, wherein the shorter-lived 
symmetric key is encapsulated in a ticket that includes data identifying a specified 
hfetime of the shorter-Uved symmetric key. 



34. (Previously Presented) An apparatus as recited in Claim 31, wherem the subsequent 
secure communications comprise successive symmetric encryption and decryption 
operations using the synunetric session key. and wherein the first device and second 
device carry out the subsequent secure conmiunications without contact witii a key 
management service or registration service. 

50325^590 (SeqNo 4700) 12 



PAGE16/22'RCVDAT7/28/2006 3:09:10 PM [Eastern D^^ 



07/28/2006 11:06* 4083920542 



HPTB 



PAGE 



HUR, Sdr. No. 10/008,053, filed November 9. 2001. GAU 2136 

REPLY TO OFFICE ACTION 

35. (Ptevipusly Presented) An apparatus as recited in Claim 32, wherein the shorter-lived 
symmetric key is encapsulated in a ticket that includes data identifying a specified 
lifetime of the shorter-lived symmetric key. 

36. (Previously Presented) An apparatus as recited in Claim 32» wherein the subsequent 
secure communicadons comprise successive symmetric encryption and deoyption 
operations using the symmetric session key» and wherein tlic first device and second 
device carry out the subsequent secure communications without contact with a key 
management service or registration service. 

37. (New) An apparatus as recited in Claim 31, wherein the means for associating a device 
public key with the first device in the secure data repository conqmses means for 
generating a public key pair comprising a device public key and a device private key and 
storing the device public key ui a database or directory that is accessible to the 
administrative entity. 

38. (New) An apparatus as recited in Claim 31. wherein the means for associating a device 
public key wifli the first device in the secure data repository comprises means for 
generating a public key pair comprising a device public key and a device private key and 
registering the device public key with a certificatiun authority that is accessible to the 
administrative «tity. 

39. (New) An apparatus as recited in Claim 3 1 , wherem the means for providing a unique 
identifier of ±e first device to the administrative entity comprises means for creating and 
storing an association of a unique identifier of the first device and the device public key 
in a secure database that is accessible to the admmistrative entity. 

40. CNew) An apparatus oa recited in Claim 37, wherein the means for establishing a longer- 
hved symmetric key comprises: 

means for generating the longer-lived symmetric key; 

means for encrypting the longer-hved symmetric key using the device public key; 
50325-0590 (SeqNo 4700) 13 
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means for encapsulating the encrypted longer-lived symmetric key in a device 

registration ticket; and 
means for sending the device registration ticket to the device. 



41 . (New) An apparatus as recited in Claim 40, wherein the means for encapsulating the 
encrypted key comprises means for encapsulating the encrypted longer-lived symmetric 
key with policy mfonnation in the device registration ticket, wherein the policy 
infomiation defines a validity interval of the encxypted longer^lived symmetric key. 

42. (New) An apparatus as recited in Claim 31, wherein the means to/r generating and 
providing a short-term symmetric key to the first device includes means for encapsulating 
the short-teim symmetric key in a short-temi ticket granting ticket with associated policy 
information. 

43. (New) An apparatus as recited in Claim 3 1 > wherein the means for receiving a request 
fiom a second device to obtain a sessicm key for secure communications among the 
second device and the &st device comprises: 

means for receiving a first short-tenn ticket granting ticket tiiat includes the short-term 

symmetric key of tiie first device; 
means for receiving a second short-term ticket granting ticket that includes the short-term 

symmetric key of the second device; 
means for decrypting flie first and second short-term ticket granting tickets based on 

respective first and second shared secret keys; 
means for authenticating the short-term symmetric keys of the first device and second 

device based on the respective first and second shaiod secret keys; and 
means for generating and providing a symmetric session key to the second device for use 

in subsequent secure peer-to-peer communications betwe^ the first device and 

the second device without communication of the first device to a key management 

service or autiioritative authentication service. 

44. (New) An apparatus as recited in Chum 32, wherein the one or more stored sequences of 
instructions that cause the processor to perform associating a device public key with the 
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first device in the secure data repository comprise instructions which when executed 
cause generatiiig a public key pair comprising a device public key and a device private 
key and storing the device public key in a database or directory that is accessible to the 
administrative entity. 



45, CNew) An apparatus as recited in Claim 32, wheiein the one or more stored sequences of 
instructions that cause the processor to perform associating a device public key with the 
first device in the secure data repository comprise instnictions which whra executed 
cause generating a public key pair comprising a device public key and a device private 
key and registering the device public key with a certification authority that is accessible 
to the administrative entity. 



46. (New) An apparatus as recited in Claim 32, wherein the one or more stored sequences of 
instructions that cause die processor to perform providing a unique identifier of the first 
device to tiie administrative entity coniprise instructions which when executed cause 
creatmg and storing an association of a unique identifier of the first device and the device 
public key in a secure datdiase that is accessible to the administrative entity. 

47. (New) An apparatus as recited in Claim 44, wherein die one or more stored sequences of 
instnictions that cause the processor to perform cstabUahing a longer-lived aymroetrio key 
comprise: 

instructions which wh«i executed cause generating die longer-lived symmetric key; 
instructions which when executed cause encrypting the longer-lived symmetric key using 

the device public key; 
instructions which when executed cause encapsulating the encrypted longer-lived 

symmetric key in a device registration ticket; and 
instructions which when executed cause sending the device registration ticket to the 

device. 



48, CNcw) An apparatus as recited in Claim 47, wherein the one or more stored sequences of 
instructions that cause tiie processor to perform euc^sulating the encrypted key comprise 
instnictions which when executed cause encapsulating the encrypted longer-lived 
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symmetric key with policy infonnation in the device registration ticket, v^rherein the 
policy infonnation defines a validity interval of the encrypted longer-lived symmetric 
key» 

49. (New) An apparatus as recited in Claim 32, wherein the one or more stored seauences of 
instructions that cause the processor to perform generating and providing a short-term 
symmetric key to the first device include instructions which when executed cause 
encapsulating the short-term symmetric key in a short-term ticket granting ticket with 
associated policy information. 

50. (New) An apparatus as recited in Claim 32, wherein the one or more stored sequences of 
instructions that cause the processor to perform receiving a request &om a second device 
to obtain a session key for secure cammunications among the second device and the first 
device comprise: 

instructions which when executed cause receiving a first short-term ticket granting ticket 

tiiat includes the short-term symmetric key of the first device; 
iustructions which when executed cause receiving a second short-term ticket granting 

ticket that includes the short-tenn symmetric key of ^ second device; 
instructions which when executed cause decrypting (he first and second short-term ticket 

granting tickets based on respective finst and second shared secr^ keys; 
instmctions which when executed cause aathenticatmg the short-term symmetric keys of 

the first device and second device based on the respective first and second shared 

secret keys; and 

instructions whidi when executed cause generating and providing a symmetric session 
key to die second device for use in subsequent secure peer-to-peer 
communications between the first device and the second device without 
communication of the first device to key management service or authoritative 
authentication service. 
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